Popup by Supsystic < 1.10.5 - Reflected Cross-Site scripting (XSS) CVE-2021-24275 Scanner
Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload.
Can be used by
Scan only one
Popup by Supsystic < 1.10.5 - Reflected Cross-Site scripting (XSS) CVE-2021-24275 Scanner Detail
The Popup by Supsystic WordPress plugin before 1.10.5 did not sanitise the tab parameter of its options page before outputting it in an attribute, leading to a reflected Cross-Site Scripting issue